build(deps): bump socket.io-parser, karma and webpack-dashboard

[dependabot[bot]]

Bumps socket.io-parser to 4.2.1 and updates ancestor dependencies socket.io-parser, karma and webpack-dashboard. These dependencies need to be updated together.

Updates socket.io-parser from 2.3.1 to 4.2.1

Release notes

Sourced from socket.io-parser's releases.

4.2.1

Bug Fixes

• check the format of the index of each attachment (b5d0cb7)

Links

• Diff: https://github.com/socketio/socket.io-parser/compare/4.2.0...4.2.1

4.2.0

Features

• allow the usage of custom replacer and reviver (#112) (b08bc1a)

Links

• Diff: https://github.com/socketio/socket.io-parser/compare/4.1.2...4.2.0

4.1.2

Bug Fixes

• allow objects with a null prototype in binary packets (#114) (7f6b262)

Links

• Diff: https://github.com/socketio/socket.io-parser/compare/4.1.1...4.1.2

4.1.1

Links

• Diff: https://github.com/socketio/socket.io-parser/compare/4.1.0...4.1.1

4.1.0

Features

• provide an ESM build with and without debug (388c616)

Links

• Diff: https://github.com/socketio/socket.io-parser/compare/4.0.4...4.1.0

4.0.5

Bug Fixes

• check the format of the index of each attachment (b559f05)

Links

• Diff: https://github.com/socketio/socket.io-parser/compare/4.0.4...4.0.5

... (truncated)

Changelog

Sourced from socket.io-parser's changelog.

4.2.1 (2022-06-27)

Bug Fixes

• check the format of the index of each attachment (b5d0cb7)

4.2.0 (2022-04-17)

Features

• allow the usage of custom replacer and reviver (#112) (b08bc1a)

4.1.2 (2022-02-17)

Bug Fixes

• allow objects with a null prototype in binary packets (#114) (7f6b262)

4.1.1 (2021-10-14)

4.1.0 (2021-10-11)

Features

• provide an ESM build with and without debug (388c616)

4.0.4 (2021-01-15)

Bug Fixes

• allow integers as event names (1c220dd)

4.0.3 (2021-01-05)

4.0.2 (2020-11-25)

... (truncated)

Commits

• 5a2ccff chore(release): 4.2.1
• b5d0cb7 fix: check the format of the index of each attachment
• c7514b5 chore(release): 4.2.0
• 931f152 chore: add Node.js 16 in the test matrix
• 6c9cb27 chore: bump @​socket.io/component-emitter to version 3.1.0
• b08bc1a feat: allow the usage of custom replacer and reviver (#112)
• aed252c chore(release): 4.1.2
• 89209fa chore: bump cached-path-relative from 1.0.2 to 1.1.0 (#113)
• 0a3b556 chore: bump path-parse from 1.0.6 to 1.0.7 (#108)
• 7f6b262 fix: allow objects with a null prototype in binary packets (#114)
• Additional commits viewable in compare view

Updates karma from 1.5.0 to 6.4.1

Release notes

Sourced from karma's releases.

v6.4.1

6.4.1 (2022-09-19)

Bug Fixes

• pass integrity value (63d86be)

v6.4.0

6.4.0 (2022-06-14)

Features

• support SRI verification of link tags (dc51a2e)
• support SRI verification of script tags (6a54b1c)

v6.3.20

6.3.20 (2022-05-13)

Bug Fixes

• prefer IPv4 addresses when resolving domains (e17698f), closes #3730

v6.3.19

6.3.19 (2022-04-19)

Bug Fixes

• client: error out when opening a new tab fails (099b85e)

v6.3.18

6.3.18 (2022-04-13)

Bug Fixes

• deps: upgrade socket.io to v4.4.1 (52a30bb)

v6.3.17

6.3.17 (2022-02-28)

Bug Fixes

• deps: update colors to maintained version (#3763) (fca1884)

v6.3.16

... (truncated)

Changelog

Sourced from karma's changelog.

6.4.1 (2022-09-19)

Bug Fixes

• pass integrity value (63d86be)

6.4.0 (2022-06-14)

Features

• support SRI verification of link tags (dc51a2e)
• support SRI verification of script tags (6a54b1c)

6.3.20 (2022-05-13)

Bug Fixes

• prefer IPv4 addresses when resolving domains (e17698f), closes #3730

6.3.19 (2022-04-19)

Bug Fixes

• client: error out when opening a new tab fails (099b85e)

6.3.18 (2022-04-13)

Bug Fixes

• deps: upgrade socket.io to v4.4.1 (52a30bb)

6.3.17 (2022-02-28)

Bug Fixes

• deps: update colors to maintained version (#3763) (fca1884)

6.3.16 (2022-02-10)

Bug Fixes

• security: mitigate the "Open Redirect Vulnerability" (ff7edbb)

... (truncated)

Commits

• 0013121 chore(release): 6.4.1 [skip ci]
• 63d86be fix: pass integrity value
• 84f7cc3 chore(release): 6.4.0 [skip ci]
• f2d0663 docs: add integrity parameter
• dc51a2e feat: support SRI verification of link tags
• 6a54b1c feat: support SRI verification of script tags
• 5e71cf5 chore(release): 6.3.20 [skip ci]
• e17698f fix: prefer IPv4 addresses when resolving domains
• 60f4f79 build: add Node 16 and 18 to the CI matrix
• 6ff5aaf chore(release): 6.3.19 [skip ci]
• Additional commits viewable in compare view

Updates webpack-dashboard from 0.3.0 to 3.3.7

Release notes

Sourced from webpack-dashboard's releases.

v3.0.7

Features

• Very minor path normalization for displaying modules paths on Windows and Prettier fixes for Windows. Included in: FormidableLabs/webpack-dashboard#284 by @​ryan-roemer.
• Add AppVeyor for Windows builds in CI. Included in: FormidableLabs/webpack-dashboard#284 by @​ryan-roemer.

Migration Instructions

No changes required to start using v3.0.7 🎉.

v3.0.6

Features

• Prevent dashboard from spawning its own console for the child process on Windows. Closes #212. Included in: FormidableLabs/webpack-dashboard#284 by @​snack-able.

Migration Instructions

No changes required to start using v3.0.6 🎉.

v3.0.5

Features

• Use npm-run-all as task runner for package.json scripts. Included in: FormidableLabs/webpack-dashboard#283.
• Use test in lieu of test-summary for nyc coverage reporting on command line. Included in: FormidableLabs/webpack-dashboard#283.

Security

• Address handlebars security vulnerability. Included in: FormidableLabs/webpack-dashboard#282 by @​juliusl.
• Address additional security vulnerabilities in js-yaml. Included in: FormidableLabs/webpack-dashboard#283.

v3.0.4

v3.0.4 was an erroneous publish.

v3.0.3

Bugs

Socket.io disconnects / large stats object size: Dramatically reduce the size of the webpack stats object being sent from client (webpack plugin) to server (CLI). Add client error/disconnect information for better future debugging. Original issue: #279 and fix: #281.

Migration Instructions

No changes required to start using v3.0.3 🎉.

3.0.2

Features

• Upgrade inspectpack dependency to handle null chunks. Original issue: FormidableLabs/inspectpack#110 and upstream fix: FormidableLabs/inspectpack#111

Migration Instructions

No changes required to start using v3.0.2 🎉.

3.0.1

... (truncated)

Changelog

Sourced from webpack-dashboard's changelog.

3.3.7

• Bug: Move plugin types and update to webpack v5. #324

3.3.6

• Bug: Allow socket messages to be null. #335, #336

[3.3.5] - 2021-07-12

• Chore: Update dependencies. #333
• Coverage: Add CodeCov stats. #206
• CI: Update Node matrix to 12/14/16.

[3.3.4] - 2021-07-12

• Chore: Refactor internal stats consumption to perform inspectpack analysis in the main thread, without using main streams.
• Chore: Refactor internal handler in plugin to always be a wrapped function so that we can't accidentally have asynchronous code call the handler function after it is removed / nulled.
• Bugfix: Add message counting delayed cleanup in plugin to allow messages to drain in Dashboard. Fixes #294.

[3.3.3] - 2021-05-05

• Security: Update socket.io version to get rid of vulnerable xmlhttprequest-ssl package. Included in: FormidableLabs/webpack-dashboard#325 by @​texpert.

[3.3.2] - 2021-05-05

• Empty publish.

[3.3.1] - 2021-01-29

• Bugfix: Ensure Status is properly updating and reaches completion. Fixes #321

[3.3.0] - 2021-01-21

• Add webpack@5 support. Closes #316
• Bugfix: webpack@5 warning message conflict. Fixes #314
• Update various production dependencies.

[3.2.1] - 2020-08-24

• Add missing dependency on chalk. Included in: FormidableLabs/webpack-dashboard#309 by @​am-a.

[3.2.0] - 2019-09-08

• Add left / right navigation keys to assets in Modules and Problems screens. Included in: FormidableLabs/webpack-dashboard#288 by @​wapgear.

[3.1.0] - 2019-08-27

• Add DashboardPlugin({ includeAssets: [ "stringPrefix", /regexObj/ ] }) Webpack plugin filtering option.
• Add webpack-dashboard --include-assets stringPrefix1 -a stringPrefix2 CLI filtering option.

... (truncated)

Commits

• cb31516 3.3.7
• 3370126 Changes for 3.3.7
• 4802585 Bug: TS fixes (#341)
• 8a725a4 Merge pull request #340 from FormidableLabs/update-readme-images
• c80df63 update readme image urls
• 530a59d Cleaned up the issue template (#337)
• 983a80c 3.3.6
• cb0aaa2 Changes for 3.3.6
• ee73086 Bug: (#338)
• 1c958c4 3.3.5
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by ryan.roemer, a new releaser for webpack-dashboard since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/fabric8-analytics/fabric8-analytics-stack-report-ui/network/alerts).